Job Description

Application Security Consultant

This role has been designed as \xe2\x80\x98Hybrid\xe2\x80\x99 with an expectation that you will work on average 2-3 days per week from an HPE office.

Who We Are:

Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today\xe2\x80\x99s complex world. Our culture thrives on finding new and better ways to accelerate what\xe2\x80\x99s next. We know diverse backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE.

:

HPE Services is our innovative IT services organization. It provides the expertise to advise, integrate, and accelerate our customers\xe2\x80\x99 outcomes from their digital transformation. Our teams collaborate to transform insight into innovation. In today\xe2\x80\x99s fast paced, hybrid IT world, being at business speed means overcoming IT complexity to match the speed of actions to the speed of opportunities. Deploy the right technology to respond quickly to market possibilities. Join us and redefine what\xe2\x80\x99s next for you.

What you\xe2\x80\x99ll do:

The Security Consultant should have a strong understanding of the emerging security practices and standards. Should be able to consult, engineer and apply security best practices while designing and proposing solutions to our enterprise customers. Should be able to conduct system security, vulnerability analysis and risk assessment, identify security gaps, identify integration issues, study architecture/platform and design security architecture.

An Application Security Consultant undertakes complex work of a high-risk level, often working on several projects. In this role, you will:

Interact with senior stakeholders across departments.

Reach and influence a wide range of people across larger teams and communities.

Understand the impact of decisions, balancing requirements and deciding between approaches

Produce patterns and support quality assurance.

Be the point of escalation for architects.

Experience:

Minimum 3 years of working experience in Cyber Security Consulting or Advisory.

Successfully delivered at-least 2 (two) Cyber Security consulting and implementation projects as consultant in recent years (2 years).

Certification:

Preferred Certification (VALID):

Certified Application Security Engineer (CASE)

Certified Secure Software Lifecycle Professional (CSSLP)

Offensive Security Web Assessor (OSWA) certification

Offensive Security Web Expert (OSWE) certification

Pen Tester certification (LPT/ OSCP/GPEN)

What you need to bring:

Application Security testing for Web and Mobile as SAST/DAST/IAST approach (Fortify, Veracode, Burp Suite)

Secure Code review, Open-Source validation (Gitlab, Coverity, SonarQube, Black Duck)

Well versed with OWASP Top10 and SANS top 25 Vulnerabilities and remediation

Well understanding on PTES (Penetration Testing Execution Standard) and Testing.

Well understanding Software Security Framework (e.g., BSIMM, SAMM)

Good written & verbal communication and analytical skills.

Good documentation skills.

Good problem-solving skills.

Additional Skills: Accountability, Accountability, Action Planning, Active Learning, Active Listening, Bias, Business Growth, Business Planning, Coaching, Commercial Acumen, Creativity, Critical Thinking, Cross-Functional Teamwork, Customer Experience Strategy, Customer Solutions, Data Analysis Management, Data Collection Management, Data Controls, Design Thinking, Empathy, Follow-Through, Growth Mindset, Intellectual Curiosity, Long Term Planning, Managing Ambiguity {+ 5 more}

What We Can Offer You:

Health & Wellbeing

We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing.

Personal & Professional Development

We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have \xe2\x80\x94 whether you want to become a knowledge expert in your field or apply your skills to another division.

Diversity, Inclusion & Belonging

We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know diverse backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good.

Let\'s Stay Connected:

Follow on Instagram to see the latest on people, culture and tech at HPE.

#india

#servicesandsupport

Job: Services

Job Level: Specialist

HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT and Affirmative Action employer. We are committed to diversity and building a team that represents a variety of backgrounds, perspectives, and skills. We do not discriminate and all decisions we make are made on the basis of qualifications, merit, and business need. Our goal is to be one global diverse team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together. Please click here: .

Hewlett Packard Enterprise is EEO F/M/Protected Veteran/ Individual with Disabilities.

HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.

Hewlett Packard Enterprise